Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1324
Views
0
Helpful
3
Replies

x-forward-for implementation

jbartoldus
Level 1
Level 1

‎01-22-2014 11:48 AM

How is the ACE supposed to implement x-forward-for?  For http request headers where there is an existing x-forward-for header, the ACE should be appending to existing header.  Instead, the ACE is adding a second x-forward-for header in the same http request.  This is causing issues with backend servers that are parsing the headers. 

ACE 30 module running A4(2.3) code.         

Labels:
0 Helpful
3 Replies 3

Kanwaljeet Singh
Cisco Employee
Cisco Employee

‎01-22-2014 02:23 PM

Hi,

The ACE inserts x-forwarded-for header and not append to an already existing one. By the way why do you want to insert another one when you already have it?

Also, the option i see is only available for insert and not append. Not sure if there is any way either we can do it. May you can let only Ace insert ip port etc.

Regards,
Kanwal

Sent from Cisco Technical Support iPhone App

0 Helpful

jbartoldus
Level 1
Level 1
In response to Kanwaljeet Singh

‎01-22-2014 07:38 PM

The standard is for proxy devices to append the last source IP address to the list of existing addresses.  So, the value of the X-Forward-For field would be client ip, proxy 1, proxy2, ...  The true client IP address would be the first left-most IP address that is not an RFC 1918 address.

0 Helpful

Kanwaljeet Singh
Cisco Employee
Cisco Employee
In response to jbartoldus

‎01-23-2014 07:59 AM

Hi,

In this case i would suggest to contact your account team to raise an enhancement request but with ACE platform being discontnued i am not sure they would be investing time bringing in new features.

Regards,

Kanwal

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card